Not a bug. Closing.
Matt
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4409
Please log in as guest with password guest if prompted
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
On Thu, Mar 10, 2016 at 12:58:34PM +, Irena Johnson via RT wrote:
> Our clients are having trouble connecting to our GRAM server, which has a
> sha256 host certificate.
The reason for the connection failures may be unrelated to the
certificate signature algorithm. What specific symptoms
256 encryption? You mean SHA-256? That's a digest, not encryption.
My guess, without more information like reproducible test, or a packet dump, is
that the client is configured to only use an earlier version of TLS/SSL, which
did not define SHA256 in its crypto-suites.
--
Ticket here:
Sorry I was not very clear. I meant to say our server has OpenSSL
1.0.1e-fips 11 Feb 2013, which supports 256 encryption.
Our client's side have a more recent version of OpenSSL ( 1.0.1p 9 Jul
2015 ), which apparently does not support 256 encryption. This is the
reason I thought this is a bug (if
> I am a bit confused, as on our server the openssl version is OpenSSL
> 1.0.1e-fips 11 Feb 2013
>
> I am not quite sure why a more recent version of openssl ( 1.0.1p 9 Jul
> 2015 ) does not support sha256.
SHA-256 is in 1.0.1 You said you had issues and asked what to upgrade to, I
gave a
Hello Rich,
Thank you for your quick response.
I am a bit confused, as on our server the openssl version is OpenSSL
1.0.1e-fips 11 Feb 2013
I am not quite sure why a more recent version of openssl ( 1.0.1p 9 Jul
2015 ) does not support sha256.
Thanks,
Irena
On Thu, Mar 10, 2016 at 8:00 AM,
This is not a bug, it's a question :)
They should install the most recent 1.0.2 release
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4409
Please log in as guest with password guest if prompted
--
openssl-dev mailing list
To
Dear OpenSSL Support,
Our clients are having trouble connecting to our GRAM server, which has a
sha256 host certificate.
The version of openssl on their site is:
OpenSSL 1.0.1p 9 Jul 2015
and it appears it's not compatible with sha256 encryption:
The command "openssl ciphers -v | grep 256"